Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/g1kHLuSjUCcLd-QuiGvT9ududfs.roa
File: g1kHLuSjUCcLd-QuiGvT9ududfs.roa (raw, json)
Hash identifier: nfVc509IBYmk5mH2JaLKLCbjPR5y5kRRb912hG+huAA=
Subject key identifier: 83:59:07:2E:E4:A3:50:27:0B:77:E4:2E:88:6B:D3:F6:E7:6E:75:FB
Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Certificate serial: 3C
Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/g1kHLuSjUCcLd-QuiGvT9ududfs.roa
Signing time: Thu 25 Jan 2024 01:06:31 +0000
ROA not before: Thu 25 Jan 2024 01:06:31 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 2514
IP address blocks: 160.248.204.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60 (0x3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Validity
Not Before: Jan 25 01:06:31 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=8359072EE4A350270B77E42E886BD3F6E76E75FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:9e:9d:ad:de:94:63:fe:8b:28:92:65:c9:
7a:dd:3b:18:3b:87:9f:8b:48:33:af:57:e7:41:f6:
c1:7a:c5:35:fd:b7:1d:33:d8:8c:04:e5:01:01:15:
fc:09:4d:a4:59:7d:91:4d:57:50:1b:c9:b8:71:ba:
30:8f:ca:20:5e:a4:b4:eb:5f:f5:d0:cb:28:81:d5:
a4:2e:29:7a:79:7d:2d:76:28:2c:c0:1b:4d:58:c0:
52:73:95:db:0f:0b:2c:ee:08:03:d0:d7:b0:c3:09:
14:4d:44:e9:59:d7:c3:11:ff:06:c6:71:f0:59:20:
80:a4:da:d2:33:98:57:e9:85:05:4b:b2:b5:b8:67:
21:75:15:84:87:75:ef:de:62:a6:38:99:f9:db:95:
2e:c3:d2:3e:a5:41:88:ac:86:7b:c3:7d:3f:84:da:
58:a1:ac:91:b3:f0:16:1e:77:87:14:f9:08:b2:09:
85:38:e8:2b:60:d6:c4:05:09:4b:c8:af:b9:73:e6:
dc:5c:d1:59:27:af:1a:c5:7a:bc:69:42:49:e7:91:
ee:3b:56:79:de:ab:82:84:6a:c7:d6:c5:e5:aa:4c:
ce:62:15:43:d4:a2:00:3d:fd:92:6a:7a:8f:90:b2:
62:da:ac:c0:60:09:16:7c:b9:1e:12:e8:fc:2a:44:
46:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:59:07:2E:E4:A3:50:27:0B:77:E4:2E:88:6B:D3:F6:E7:6E:75:FB
X509v3 Authority Key Identifier:
keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/g1kHLuSjUCcLd-QuiGvT9ududfs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.248.204.0/23
Signature Algorithm: sha256WithRSAEncryption
77:27:26:cd:ec:16:9e:3e:b9:2b:db:80:2e:94:af:2f:6b:a6:
3f:a4:b9:a5:ed:a6:54:12:13:ae:70:e1:88:96:43:9f:ba:5b:
e2:31:cb:ca:5f:26:d9:23:1e:86:e4:ae:2f:32:bc:0e:94:19:
6f:3d:99:20:bd:03:0a:70:48:74:04:ab:ee:96:43:91:6e:dc:
17:19:46:5a:47:22:e1:fa:c6:7e:97:97:ee:63:30:d7:20:69:
45:82:8f:80:82:b6:a8:46:45:8e:9d:94:ad:c5:06:11:ba:18:
55:b9:36:7b:c5:e4:a0:31:04:d1:a3:63:d3:78:26:c8:3a:5c:
3b:e4:7d:0c:2f:39:cd:88:73:32:d7:d0:41:74:39:99:4a:36:
2d:15:a3:c4:52:34:b3:48:3b:0a:43:4c:f2:51:44:19:9b:14:
bf:86:06:26:b7:79:b2:99:65:3e:0a:ff:f4:76:43:72:9b:69:
fe:16:bc:e3:ce:45:a3:c6:82:52:33:6e:51:b3:6c:10:7f:c4:
88:30:50:3e:0d:84:5a:ad:e5:6f:4e:bb:5e:13:58:91:bf:39:
ec:7a:42:fa:72:88:60:d1:b2:72:ac:40:30:6a:40:99:65:7c:
5a:12:b6:bb:f8:86:30:59:7d:62:87:95:7f:48:84:9f:0e:78:
0c:12:59:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:33 2025 by rpki-client